PaulDotCom mailing list archives

Previous By Date Next
Previous By Thread Next

Security FAIL: Local auth by pass FTW

From: Jim Halfpenny <jim.halfpenny () gmail com>
Date: Sat, 1 Dec 2012 20:21:25 +0000
Q. Does a data centre PDU giving up the console management PIN just by
pressing the login button count  as a SCADA cyberwar APT?

*drink* *drink* *drink*

Take a look at this one. As fails go it's pretty EPIC.

http://bobstories.net/?p=80

4 digit passcode? Check!
Default is 1234? Check?
PIN revealed to all and sundry? Check!

Enjoy,
Jim

_______________________________________________
Pauldotcom mailing list
Pauldotcom () mail pauldotcom com
http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom
Main Web Site: http://pauldotcom.com
Previous By Date Next
Previous By Thread Next

Current thread: